I couldn't drag & drop the new scan.txt file into the Custom Scans box so I opened and copied and pasted instead then ran the scan.
OTL logfile created on: 3/27/2011 2:44:35 PM - Run
OTLPE by OldTimer - Version 3.1.46.0 Folder = X:\Programs\OTLPE
64bit-Windows 7 Home Premium (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 91.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\Windows | %ProgramFiles% = G:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 74.34 Mb Free Space | 74.34% Space Free | Partition Type: NTFS
Drive F: | 30.45 Mb Total Space | 12.94 Mb Free Space | 42.51% Space Free | Partition Type: FAT
Drive G: | 449.66 Gb Total Space | 404.17 Gb Free Space | 89.88% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Win32 Services (SafeList) ========== SRV:
64bit: - [2010/01/28 19:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto] -- G:\Program Files\eMachines\eMachines Updater\UpdaterService.exe -- (Updater Service)
SRV:
64bit: - [2009/08/10 19:01:06 | 000,206,880 | ---- | M] () [Auto] -- G:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV:
64bit: - [2009/08/10 19:01:04 | 000,626,208 | ---- | M] () [Auto] -- G:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM)
SRV:
64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto] -- G:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/12/15 14:31:20 | 000,460,144 | ---- | M] () [Auto] -- G:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe -- (FlipShare Service)
SRV - [2010/12/15 14:22:42 | 001,085,440 | ---- | M] () [Auto] -- G:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe -- (FlipShareServer)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- G:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/25 20:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Auto] -- G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe -- (NIS)
SRV - [2010/01/15 17:08:38 | 000,935,208 | ---- | M] (Nero AG) [On_Demand] -- G:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/08/28 05:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto] -- G:\Program Files (x86)\eMachines\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- G:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/04/13 12:20:22 | 000,097,432 | ---- | M] () [Auto] -- G:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
========== Driver Services (SafeList) ========== DRV:
64bit: - [2011/02/18 17:36:58 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand] -- G:\Windows\System32\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:
64bit: - [2011/01/08 22:25:46 | 000,173,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- G:\Windows\System32\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:
64bit: - [2010/05/06 00:01:59 | 000,451,120 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\Windows\System32\Drivers\NISx64\1108000.005\SYMTDIV.SYS -- (SYMTDIv)
DRV:
64bit: - [2010/04/29 01:03:51 | 000,150,064 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\Windows\system32\drivers\NISx64\1108000.005\Ironx64.SYS -- (SymIRON)
DRV:
64bit: - [2010/04/21 23:02:20 | 000,221,232 | ---- | M] (Symantec Corporation) [File_System | Boot] -- G:\Windows\System32\drivers\NISx64\1108000.005\symefa64.sys -- (SymEFA)
DRV:
64bit: - [2010/04/21 22:29:51 | 000,505,392 | ---- | M] (Symantec Corporation) [File_System | On_Demand] -- G:\Windows\System32\Drivers\NISx64\1108000.005\SRTSP64.SYS -- (SRTSP)
DRV:
64bit: - [2010/04/21 22:29:51 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\Windows\system32\drivers\NISx64\1108000.005\SRTSPX64.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:
64bit: - [2010/02/25 20:22:52 | 000,615,040 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\Windows\system32\drivers\NISx64\1108000.005\ccHPx64.sys -- (ccHP)
DRV:
64bit: - [2009/11/05 18:06:13 | 000,433,200 | R--- | M] (Symantec Corporation) [Kernel | Boot] -- G:\Windows\System32\drivers\NISx64\1108000.005\symds64.sys -- (SymDS)
DRV:
64bit: - [2009/07/30 05:12:56 | 000,339,744 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- G:\Windows\System32\drivers\nvmf6264.sys -- (NVNET)
DRV:
64bit: - [2009/06/11 01:34:38 | 001,208,320 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- G:\Windows\System32\drivers\agrsm64.sys -- (AGERESoftModem)
DRV:
64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- G:\Windows\System32\wbem\ntfs.mof -- (Ntfs)
DRV:
64bit: - [2009/06/10 16:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- G:\Windows\System32\drivers\nvm62x64.sys -- (NVENETFD)
DRV:
64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- G:\Windows\system32\DRIVERS\evbda.sys -- (ebdrv)
DRV:
64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- G:\Windows\system32\DRIVERS\bxvbda.sys -- (b06bdrv)
DRV:
64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- G:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
DRV - [2011/03/26 11:28:47 | 000,475,696 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011/03/26 09:54:26 | 001,791,096 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- G:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110325.035\ex64.sys -- (NAVEX15)
DRV - [2011/03/26 09:54:26 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- G:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110325.035\eng64.sys -- (NAVENG)
DRV - [2011/02/25 17:59:11 | 001,124,472 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\BASHDefs\20110309.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2011/01/08 22:47:44 | 000,132,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- G:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/12/01 02:03:34 | 000,476,792 | ---- | M] (Symantec Corporation) [Kernel | System] -- G:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\20110325.001\IDSviA64.sys -- (IDSVia64)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:
64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.emac...54v1h5r4751t288IE:
64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://homepage.emac...54v1h5r4751t288 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Chloe_ON_G\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.emac...54v1h5r4751t288IE - HKU\Chloe_ON_G\Software\Microsoft\Internet Explorer\Main,Start Page =
http://homepage.emac...54v1h5r4751t288IE - HKU\Chloe_ON_G\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Christine_ON_G\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.emac...54v1h5r4751t288IE - HKU\Christine_ON_G\Software\Microsoft\Internet Explorer\Main,Start Page =
http://homepage.emac...54v1h5r4751t288IE - HKU\Christine_ON_G\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Christine_ON_G\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\Jack_ON_G\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.emac...54v1h5r4751t288IE - HKU\Jack_ON_G\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.google.com/ [binary data]
IE - HKU\Jack_ON_G\Software\Microsoft\Internet Explorer\Main,Start Page =
http://homepage.emac...54v1h5r4751t288IE - HKU\Jack_ON_G\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Steve_ON_G\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://homepage.emac...54v1h5r4751t288IE - HKU\Steve_ON_G\Software\Microsoft\Internet Explorer\Main,Start Page =
http://homepage.emac...54v1h5r4751t288IE - HKU\Steve_ON_G\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ========== FF - prefs.js..browser.startup.homepage: "www.gmail.com"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
[2011/01/09 14:49:44 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Chloe\AppData\Roaming\Mozilla\Extensions
[2011/01/09 14:49:44 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Chloe\AppData\Roaming\Mozilla\Firefox\Profiles\dzw3nrxj.default\extensions
[2011/01/15 16:55:08 | 000,000,000 | ---D | M] (No name found) -- G:\Program Files (x86)\Mozilla Firefox\extensions
[2011/01/12 12:03:18 | 000,000,000 | ---D | M] (Java Console) -- G:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/15 16:55:08 | 000,000,000 | ---D | M] (Java Console) -- G:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\COFFPLGN
File not found (No name found) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPSFFPLGN
[2010/11/12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- G:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
O1 HOSTS File: ([2011/03/26 12:39:30 | 000,000,098 | ---- | M]) - G:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:
64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:
64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - G:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll (Google Inc.)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - G:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.)
O3:
64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:
64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:
64bit: - HKU\Chloe_ON_G\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\Chloe_ON_G\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation)
O3:
64bit: - HKU\Christine_ON_G\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\Christine_ON_G\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation)
O3:
64bit: - HKU\Jack_ON_G\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\Jack_ON_G\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - G:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation)
O3:
64bit: - HKU\Steve_ON_G\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - G:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:
64bit: - HKLM..\Run: [CanonMyPrinter] G:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:
64bit: - HKLM..\Run: [CanonSolutionMenu] G:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:
64bit: - HKLM..\Run: [RtHDVCpl] G:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:
64bit: - HKLM..\Run: [WrtMon.exe] G:\Windows\System32\spool\drivers\x64\3\WrtMon.exe ()
O4 - HKLM..\Run: [Hotkey Utility] G:\Program Files (x86)\eMachines\Hotkey Utility\HotkeyUtility.exe ()
O4 - HKLM..\Run: [OpwareSE4] G:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKU\LocalService_ON_G..\Run: [Sidebar] G:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_G..\Run: [Sidebar] G:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [OTL] File not found
O4 - HKU\LocalService_ON_G..\RunOnce: [mctadmin] File not found
O4 - HKU\NetworkService_ON_G..\RunOnce: [mctadmin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\Chloe_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Chloe_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\Chloe_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\Christine_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Christine_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\Christine_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\Jack_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Jack_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\Jack_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\Steve_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Steve_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\Steve_ON_G\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:
64bit: - Extra context menu item: Google Sidewiki... - G:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O8 - Extra context menu item: Google Sidewiki... - G:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.)
O10:
64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - G:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - G:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13:
64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.71.230 68.87.73.246
O18:
64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O20:
64bit: - HKLM Winlogon: Shell - (explorer.exe) - G:\Windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - G:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - G:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/01/15 14:55:32 | 000,000,165 | -H-- | M] () - F:\autorun.inf -- [ FAT ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:
64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
Drivers32:
64bit: aux - G:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32:
64bit: midi - G:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32:
64bit: midimapper - G:\Windows\System32\midimap.dll (Microsoft Corporation)
Drivers32:
64bit: mixer - G:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32:
64bit: msacm.imaadpcm - G:\Windows\System32\imaadp32.acm (Microsoft Corporation)
Drivers32:
64bit: msacm.l3acm - G:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:
64bit: msacm.msadpcm - G:\Windows\System32\msadp32.acm (Microsoft Corporation)
Drivers32:
64bit: msacm.msg711 - G:\Windows\System32\msg711.acm (Microsoft Corporation)
Drivers32:
64bit: msacm.msgsm610 - G:\Windows\System32\msgsm32.acm (Microsoft Corporation)
Drivers32:
64bit: vidc.i420 - G:\Windows\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.iyuv - G:\Windows\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.mrle - G:\Windows\System32\msrle32.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.msvc - G:\Windows\System32\msvidc32.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.uyvy - G:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.yuy2 - G:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.yvu9 - G:\Windows\System32\tsbyuv.dll (Microsoft Corporation)
Drivers32:
64bit: vidc.yvyu - G:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32:
64bit: wave - G:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32:
64bit: wavemapper - G:\Windows\System32\msacm32.drv (Microsoft Corporation)
Drivers32: msacm.l3acm - G:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
SafeBootMin:
64bit: AppMgmt - Service
SafeBootMin:
64bit: Base - Driver Group
SafeBootMin:
64bit: Boot Bus Extender - Driver Group
SafeBootMin:
64bit: Boot file system - Driver Group
SafeBootMin:
64bit: File system - Driver Group
SafeBootMin:
64bit: Filter - Driver Group
SafeBootMin:
64bit: HelpSvc - Service
SafeBootMin:
64bit: PCI Configuration - Driver Group
SafeBootMin:
64bit: PNP Filter - Driver Group
SafeBootMin:
64bit: Primary disk - Driver Group
SafeBootMin:
64bit: sacsvr - Service
SafeBootMin:
64bit: SCSI Class - Driver Group
SafeBootMin:
64bit: System Bus Extender - Driver Group
SafeBootMin:
64bit: vmms - Service
SafeBootMin:
64bit: WinDefend - G:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:
64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:
64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:
64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:
64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:
64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:
64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:
64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:
64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:
64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:
64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:
64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:
64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:
64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:
64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:
64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:
64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:
64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:
64bit: AppMgmt - Service
SafeBootNet:
64bit: Base - Driver Group
SafeBootNet:
64bit: Boot Bus Extender - Driver Group
SafeBootNet:
64bit: Boot file system - Driver Group
SafeBootNet:
64bit: File system - Driver Group
SafeBootNet:
64bit: Filter - Driver Group
SafeBootNet:
64bit: HelpSvc - Service
SafeBootNet:
64bit: Messenger - Service
SafeBootNet:
64bit: NDIS Wrapper - Driver Group
SafeBootNet:
64bit: NetBIOSGroup - Driver Group
SafeBootNet:
64bit: NetDDEGroup - Driver Group
SafeBootNet:
64bit: Network - Driver Group
SafeBootNet:
64bit: NetworkProvider - Driver Group
SafeBootNet:
64bit: PCI Configuration - Driver Group
SafeBootNet:
64bit: PNP Filter - Driver Group
SafeBootNet:
64bit: PNP_TDI - Driver Group
SafeBootNet:
64bit: Primary disk - Driver Group
SafeBootNet:
64bit: rdsessmgr - Service
SafeBootNet:
64bit: sacsvr - Service
SafeBootNet:
64bit: SCSI Class - Driver Group
SafeBootNet:
64bit: Streams Drivers - Driver Group
SafeBootNet:
64bit: System Bus Extender - Driver Group
SafeBootNet:
64bit: TDI - Driver Group
SafeBootNet:
64bit: vmms - Service
SafeBootNet:
64bit: WinDefend - G:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:
64bit: WudfUsbccidDriver - Driver
SafeBootNet:
64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:
64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:
64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:
64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:
64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:
64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:
64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:
64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:
64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:
64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:
64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:
64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:
64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:
64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:
64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:
64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:
64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:
64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:
64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:
64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:
64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:
64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX:
64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:
64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:
64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:
64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:
64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:
64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:
64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:
64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:
64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:
64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:
64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:
64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:
64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:
64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:
64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:
64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:
64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:
64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:
64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:
64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:
64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:
64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
PhysicalDisk0 MBR saved to G:\Physical0MBR.bin
========== Files/Folders - Created Within 30 Days ========== [2011/03/26 19:51:51 | 000,000,000 | ---D | C] -- G:\Users\Chloe\Documents\New Folder
[2011/03/26 12:39:29 | 000,000,000 | ---D | C] -- G:\_OTL
[2011/03/26 11:43:09 | 000,000,000 | ---D | C] -- G:\Users\Christine\AppData\Roaming\Tific
[2011/03/26 09:44:52 | 000,000,000 | ---D | C] -- G:\Windows\en
[2011/03/26 09:44:34 | 000,000,000 | R--D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/03/26 09:42:43 | 000,000,000 | ---D | C] -- G:\Program Files\Windows Live
[2011/03/26 09:42:26 | 000,523,088 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\d3dx10_42.dll
[2011/03/26 09:42:26 | 000,515,416 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\XAudio2_5.dll
[2011/03/26 09:42:26 | 000,453,456 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\d3dx10_42.dll
[2011/03/26 09:42:26 | 000,069,464 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\XAPOFX1_3.dll
[2011/03/26 09:38:53 | 000,000,000 | ---D | C] -- G:\Users\Christine\AppData\Local\Windows Live
[2011/03/26 08:50:54 | 000,000,000 | ---D | C] -- G:\ProgramData\mEfCbHcFoMg16639
[2011/03/20 21:28:42 | 000,000,000 | ---D | C] -- G:\Users\Christine\AppData\Local\Adobe
[2011/03/19 17:02:08 | 000,000,000 | ---D | C] -- G:\Users\Christine\AppData\Local\Microsoft Games
[2011/03/12 21:17:05 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/03/12 21:16:44 | 000,000,000 | ---D | C] -- G:\Program Files\iPod
[2011/03/12 21:16:43 | 000,000,000 | ---D | C] -- G:\Program Files\iTunes
[2011/03/12 21:16:43 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\iTunes
[2011/03/08 17:51:32 | 001,540,608 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\DWrite.dll
[2011/03/08 17:51:32 | 001,074,176 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\DWrite.dll
[2011/03/08 17:51:32 | 000,902,656 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\d2d1.dll
[2011/03/08 17:51:32 | 000,739,840 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\d2d1.dll
[2011/03/08 17:51:31 | 000,961,024 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\CPFilters.dll
[2011/03/08 17:51:31 | 000,723,968 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\EncDec.dll
[2011/03/08 17:51:30 | 001,118,720 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\sbe.dll
[2011/03/08 17:51:30 | 000,850,432 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\sbe.dll
[2011/03/08 17:51:30 | 000,642,048 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\CPFilters.dll
[2011/03/08 17:51:30 | 000,534,528 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\EncDec.dll
[2011/03/08 17:51:30 | 000,259,072 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\mpg2splt.ax
[2011/03/08 17:51:30 | 000,199,680 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\mpg2splt.ax
[2011/03/08 17:51:29 | 003,138,048 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\mstscax.dll
[2011/03/08 17:51:29 | 002,690,560 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\mstscax.dll
[2011/03/08 17:51:29 | 001,097,216 | ---- | C] (Microsoft Corporation) -- G:\Windows\System32\mstsc.exe
[2011/03/08 17:51:29 | 001,034,240 | ---- | C] (Microsoft Corporation) -- G:\Windows\SysWow64\mstsc.exe
[2011/03/02 19:25:37 | 000,000,000 | ---D | C] -- G:\Users\Jack\Documents\AVS4YOU
[2011/03/02 19:17:47 | 000,000,000 | ---D | C] -- G:\ProgramData\AVS4YOU
[2011/03/02 19:17:42 | 000,000,000 | ---D | C] -- G:\Users\Jack\AppData\Roaming\AVS4YOU
[2011/03/02 19:17:15 | 000,000,000 | ---D | C] -- G:\Users\Christine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/02 19:16:16 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/02 19:15:56 | 010,915,840 | ---- | C] (Intel Corporation) -- G:\Windows\SysWow64\libmfxhw32.dll
[2011/03/02 19:15:56 | 010,833,920 | ---- | C] (Intel Corporation) -- G:\Windows\SysWow64\libmfxsw32.dll
[2011/03/02 19:15:51 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Common Files\AVSMedia
[2011/03/02 19:15:51 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\AVS4YOU
[2011/03/02 19:05:19 | 000,000,000 | ---D | C] -- G:\Users\Jack\AppData\Roaming\Flip Video
[2011/03/02 19:04:57 | 000,000,000 | ---D | C] -- G:\ProgramData\Flip Video
[2011/03/02 19:04:56 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Flip Video
[1 G:\Users\Jack\Documents\*.tmp files -> G:\Users\Jack\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2011/03/27 14:45:06 | 000,000,512 | ---- | M] () -- G:\Physical0MBR.bin
[2011/03/27 13:36:22 | 000,067,584 | --S- | M] () -- G:\Windows\bootstat.dat
[2011/03/27 13:34:57 | 3019,399,168 | -HS- | M] () -- G:\hiberfil.sys
[2011/03/26 12:39:30 | 000,000,098 | ---- | M] () -- G:\Windows\System32\drivers\etc\Hosts
[2011/03/26 12:21:00 | 000,000,898 | ---- | M] () -- G:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/03/26 12:12:27 | 000,009,920 | -H-- | M] () -- G:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/26 12:12:27 | 000,009,920 | -H-- | M] () -- G:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/26 12:09:32 | 000,623,940 | ---- | M] () -- G:\Windows\System32\perfh009.dat
[2011/03/26 12:09:32 | 000,106,316 | ---- | M] () -- G:\Windows\System32\perfc009.dat
[2011/03/26 12:06:01 | 000,000,894 | ---- | M] () -- G:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/03/26 11:41:12 | 000,001,952 | ---- | M] () -- G:\Users\Jack\Desktop\Mozilla Firefox (Safe Mode).lnk
[2011/03/26 09:44:35 | 000,000,000 | R--D | M] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2011/03/26 09:44:31 | 000,001,274 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/03/26 09:44:19 | 000,001,343 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/03/26 09:44:01 | 000,001,427 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/03/26 09:43:27 | 000,002,455 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/03/19 10:00:19 | 000,002,148 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Connect.lnk
[2011/03/19 09:23:15 | 271,428,322 | ---- | M] () -- G:\Windows\MEMORY.DMP
[2011/03/13 10:39:35 | 000,000,960 | ---- | M] () -- G:\Users\Christine\Desktop\SHOPPING LIST.LNK
[2011/03/12 21:17:06 | 000,001,752 | ---- | M] () -- G:\Users\Public\Desktop\iTunes.lnk
[2011/03/12 21:17:06 | 000,000,000 | ---D | M] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/03/11 07:43:05 | 000,000,000 | ---D | M] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/03/03 15:52:59 | 000,431,816 | ---- | M] () -- G:\Windows\System32\FNTCACHE.DAT
[2011/03/02 19:17:25 | 000,000,000 | ---D | M] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/02 19:17:21 | 000,001,266 | ---- | M] () -- G:\Users\Christine\Desktop\AVS4YOU Software Navigator.lnk
[2011/03/02 19:16:17 | 000,001,174 | ---- | M] () -- G:\Users\Christine\Desktop\AVS Video Editor.lnk
[2011/03/02 19:07:23 | 000,004,608 | ---- | M] () -- G:\Users\Jack\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/02 19:04:59 | 000,001,075 | ---- | M] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlipShare.lnk
[2011/03/02 19:04:59 | 000,001,063 | ---- | M] () -- G:\Users\Public\Desktop\FlipShare.lnk
[1 G:\Users\Jack\Documents\*.tmp files -> G:\Users\Jack\Documents\*.tmp -> ]
========== Files Created - No Company Name ========== [2011/03/27 14:45:06 | 000,000,512 | ---- | C] () -- G:\Physical0MBR.bin
[2011/03/26 11:41:12 | 000,001,952 | ---- | C] () -- G:\Users\Jack\Desktop\Mozilla Firefox (Safe Mode).lnk
[2011/03/26 09:44:31 | 000,001,274 | ---- | C] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011/03/26 09:44:19 | 000,001,343 | ---- | C] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011/03/26 09:44:00 | 000,001,427 | ---- | C] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011/03/26 09:43:27 | 000,002,455 | ---- | C] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011/03/12 21:17:06 | 000,001,752 | ---- | C] () -- G:\Users\Public\Desktop\iTunes.lnk
[2011/03/02 19:17:21 | 000,001,266 | ---- | C] () -- G:\Users\Christine\Desktop\AVS4YOU Software Navigator.lnk
[2011/03/02 19:16:17 | 000,001,174 | ---- | C] () -- G:\Users\Christine\Desktop\AVS Video Editor.lnk
[2011/03/02 19:05:34 | 000,004,608 | ---- | C] () -- G:\Users\Jack\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/02 19:04:59 | 000,001,075 | ---- | C] () -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlipShare.lnk
[2011/03/02 19:04:59 | 000,001,063 | ---- | C] () -- G:\Users\Public\Desktop\FlipShare.lnk
[2011/01/15 16:52:23 | 000,073,220 | ---- | C] () -- G:\Windows\SysWow64\EPPICPrinterDB.dat
[2011/01/15 16:52:23 | 000,031,053 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern131.dat
[2011/01/15 16:52:23 | 000,029,114 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern1.dat
[2011/01/15 16:52:23 | 000,027,417 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern121.dat
[2011/01/15 16:52:23 | 000,021,021 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern3.dat
[2011/01/15 16:52:23 | 000,015,670 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern5.dat
[2011/01/15 16:52:23 | 000,013,280 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern2.dat
[2011/01/15 16:52:23 | 000,010,673 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern4.dat
[2011/01/15 16:52:23 | 000,004,943 | ---- | C] () -- G:\Windows\SysWow64\EPPICPattern6.dat
[2011/01/15 16:52:23 | 000,001,140 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_PT.dat
[2011/01/15 16:52:23 | 000,001,140 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_BP.dat
[2011/01/15 16:52:23 | 000,001,137 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_ES.dat
[2011/01/15 16:52:23 | 000,001,130 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_FR.dat
[2011/01/15 16:52:23 | 000,001,130 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_CF.dat
[2011/01/15 16:52:23 | 000,001,104 | ---- | C] () -- G:\Windows\SysWow64\EPPICPresetData_EN.dat
[2011/01/15 16:52:23 | 000,000,097 | ---- | C] () -- G:\Windows\SysWow64\PICSDK.ini
[2011/01/09 11:12:15 | 000,011,776 | ---- | C] () -- G:\Windows\SysWow64\pmsbfn32.dll
[2011/01/09 11:09:01 | 000,000,424 | ---- | C] () -- G:\Windows\MAXLINK.INI
[2011/01/08 23:56:51 | 000,000,000 | ---- | C] () -- G:\Windows\nsreg.dat
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- G:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- G:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- G:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- G:\Windows\mib.bin
[2009/07/13 20:02:54 | 000,245,248 | ---- | C] () -- G:\Windows\SysWow64\DShowRdpFilter.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- G:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 18:25:04 | 000,197,632 | ---- | C] () -- G:\Windows\SysWow64\ir32_32.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- G:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- G:\Windows\SysWow64\mlang.dat
========== LOP Check ========== [2010/06/07 13:20:21 | 000,000,000 | ---D | M] -- G:\ProgramData\Acer
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Application Data
[2011/01/09 10:56:53 | 000,000,000 | -H-D | M] -- G:\ProgramData\CanonBJ
[2011/03/11 16:40:36 | 000,000,000 | ---D | M] -- G:\ProgramData\CanonIJPLM
[2011/01/15 15:38:42 | 000,000,000 | ---D | M] -- G:\ProgramData\Cisco Systems
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Desktop
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Documents
[2010/06/07 13:22:21 | 000,000,000 | ---D | M] -- G:\ProgramData\eMachines
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Favorites
[2011/03/02 19:05:03 | 000,000,000 | ---D | M] -- G:\ProgramData\Flip Video
[2011/01/27 11:29:12 | 000,000,000 | ---D | M] -- G:\ProgramData\KingsIsle Entertainment
[2011/01/17 16:09:17 | 000,000,000 | ---D | M] -- G:\ProgramData\MakeMusic
[2011/03/26 08:50:55 | 000,000,000 | ---D | M] -- G:\ProgramData\mEfCbHcFoMg16639
[2011/01/08 22:22:35 | 000,000,000 | ---D | M] -- G:\ProgramData\OEM
[2011/01/08 22:21:27 | 000,000,000 | ---D | M] -- G:\ProgramData\OEM_E471269A730D
[2011/02/01 16:02:04 | 000,000,000 | ---D | M] -- G:\ProgramData\Partner
[2011/01/09 11:08:53 | 000,000,000 | ---D | M] -- G:\ProgramData\ScanSoft
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Start Menu
[2010/09/10 20:18:37 | 000,000,000 | ---D | M] -- G:\ProgramData\Temp
[2009/07/14 01:08:56 | 000,000,000 | -HSD | M] -- G:\ProgramData\Templates
[2011/01/08 23:54:23 | 000,000,000 | ---D | M] -- G:\ProgramData\WildTangent
[2011/01/23 14:40:05 | 000,000,000 | ---D | M] -- G:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2009/07/14 01:08:49 | 000,025,338 | ---- | M] () -- G:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* >[2010/06/07 13:59:36 | 000,008,192 | RHS- | M] () -- G:\BOOTSECT.BAK
[2011/03/27 13:34:57 | 3019,399,168 | -HS- | M] () -- G:\hiberfil.sys
[2011/03/27 09:13:36 | 000,070,758 | ---- | M] () -- G:\OTL.Txt
[2011/03/27 13:35:06 | 4025,868,288 | -HS- | M] () -- G:\pagefile.sys
[2011/03/27 14:45:06 | 000,000,512 | ---- | M] () -- G:\Physical0MBR.bin
[2010/09/10 20:13:15 | 000,002,246 | ---- | M] () -- G:\RHDSetup.log
< MD5 for: EXPLORER.EXE >[2009/10/06 02:06:36 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=00B0358734CAA32C39D181FE6916B178 -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe
[2009/07/13 21:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 01:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- G:\Windows\SysWOW64\explorer.exe
[2009/10/31 01:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/10/06 02:35:29 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=6D4F9E4B640B413C6F73414327484C80 -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[2010/02/04 06:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 02:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- G:\Windows\explorer.exe
[2009/10/31 02:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010/02/04 06:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 02:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2010/02/04 06:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/13 21:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 02:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/10/06 02:31:09 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=CA17F8620815267DC838E30B68CB5052 -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[2010/02/04 06:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- G:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[2009/10/06 01:53:03 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=FC89FACA0473641CB625EDA9277D0885 -- G:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe
< MD5 for: SFC.DLL >[2009/07/13 21:10:22 | 000,002,560 | ---- | M] (Microsoft Corporation) MD5=40CAEEE0EAF1B8569F7C8DF6420F2CB9 -- G:\Windows\SysWOW64\sfc.dll
[2009/07/13 21:10:22 | 000,002,560 | ---- | M] (Microsoft Corporation) MD5=40CAEEE0EAF1B8569F7C8DF6420F2CB9 -- G:\Windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_a70c196fbd853ae9\sfc.dll
[2009/07/13 21:33:06 | 000,003,072 | ---- | M] (Microsoft Corporation) MD5=C6DCD1D11ED6827F05C00773C3E7053C -- G:\Windows\SysWOW64\sfc.dll
[2009/07/13 21:33:06 | 000,003,072 | ---- | M] (Microsoft Corporation) MD5=C6DCD1D11ED6827F05C00773C3E7053C -- G:\Windows\winsxs\amd64_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_032ab4f375e2ac1f\sfc.dll
< MD5 for: USERINIT.EXE >[2009/07/13 21:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- G:\Windows\SysWOW64\userinit.exe
[2009/07/13 21:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- G:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/13 21:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- G:\Windows\SysWOW64\userinit.exe
[2009/07/13 21:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- G:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WININIT.EXE >[2009/07/13 21:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- G:\Windows\SysWOW64\wininit.exe
[2009/07/13 21:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- G:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[2009/07/13 21:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- G:\Windows\SysWOW64\wininit.exe
[2009/07/13 21:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- G:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
< MD5 for: WINLOGON.EXE >